It is implied by the dependency to the OpenAPI conformance class and the /req/oas30/security requirement, but since authentication and access control has been a recurring topic in INSPIRE, it may be helpful to add a reminder that any security scheme(s) used by the API have to be documented in the OpenAPI definition to enable that clients can support access to the secured parts of the API.
It is implied by the dependency to the OpenAPI conformance class and the
/req/oas30/securityrequirement, but since authentication and access control has been a recurring topic in INSPIRE, it may be helpful to add a reminder that any security scheme(s) used by the API have to be documented in the OpenAPI definition to enable that clients can support access to the secured parts of the API.